Agencies
Every agency on the site, grouped by mandate — foreign intelligence, signals & cyber, military, domestic security, law enforcement. Within each group, sorted by country then by name. Pages marked in progress have stub entries; full references are being written progressively.
Signals & cyber · 12
ASD Information Warfare Division
The offensive-cyber arm of the Australian Signals Directorate — formally established 1 July 2017 as a co-equal directorate within ASD, alongside the Signals Intelligence Division and the Australian Cyber Security Centre. The IWD operates Australia's offensive-cyber capability, conducting joint operations with the United States and United Kingdom Five Eyes partners. The Division's operational footprint against the Islamic State media-and-recruitment infrastructure across 2016–2018 was publicly acknowledged by the Australian Government and is the principal disclosed operational record.
Australian Signals Directorate
Australia's signals-intelligence and offensive-cyber agency, with origins in wartime Australian signals operations and a founding role in the Five Eyes partnership.
Communications Security Establishment
Canada's national signals-intelligence and cyber-security agency, with origins in the wartime Examination Unit and a founding role in the Five Eyes signals partnership.
MOIS OilRig cluster
The principal cyber-operational cluster attributed to Iran's Ministry of Intelligence and Security — the civilian-intelligence service, distinct from the parallel cyber capability of the IRGC Intelligence Organisation. Tracked across the threat-intelligence industry as APT34, OilRig, Helix Kitten, and Hazel Sandstorm. Operations focus on regional Gulf-state, Israeli, and Saudi-Arabian government and energy-sector targets; substantially weaker public attribution and indictment record than the parallel IRGC-IO cluster.
Aman Unit 8200
The principal signals-intelligence and cryptanalytic unit of the Israeli Defense Forces' Military Intelligence Directorate (Aman) — the largest single unit in the IDF by personnel, the institutional source of substantial Israeli cyber capability, and the joint partner with NSA TAO in the Stuxnet operation against the Iranian Natanz uranium-enrichment facility.
Government Communications Security Bureau
New Zealand's signals-intelligence and cyber-security agency, with origins in the post-war reorganisation of New Zealand signals work and a founding role in the Five Eyes signals partnership.
Signals Intelligence Agency
The United Arab Emirates' national signals-intelligence and cyber-security agency, established in 2012 as the National Electronic Security Authority (NESA) and subsequently reorganised under the SIA name; substantially staffed by Western contractors and former intelligence officers.
GCHQ Joint Threat Research Intelligence Group
The Government Communications Headquarters' computer-network-attack and information-operations unit — responsible for the disruptive and offensive cyber operations described in the 2014 Snowden disclosures, including online identity operations, deception and degradation campaigns, and the joint NSA-GCHQ operation against the Belgian telecommunications operator Belgacom.
Government Communications Headquarters
The United Kingdom's signals-intelligence, cryptography, and cyber-security agency, with origins in the wartime Government Code and Cypher School at Bletchley Park.
National Security Agency
The signals-intelligence and information-security agency of the United States, established in 1952 by classified executive order and disclosed publicly only in 1957.
NSA Tailored Access Operations
The Central Security Service's elite computer-network-exploitation arm — the operational unit responsible for offensive intrusion against foreign networks, target-specific implant development, and the bulk of the United States' cyber-collection programmes disclosed through the 2013 Snowden archive. Reorganised in 2016 into the Computer Network Operations Directorate; tracked in industry as the Equation Group.
United States Cyber Command
The United States unified combatant command responsible for the conduct of military cyber operations. The Commander of US Cyber Command is dual-hatted as the Director of the National Security Agency.
How the index is organised
This index groups every intelligence agency on the site by mandate — foreign intelligence, signals & cyber, military, domestic security, law enforcement, with coordination services at the top. Within each group, entries are sorted by country and then by name. The grouping mirrors the per-country agency lists so the typology stays consistent across the site. Each card shows the agency's country of origin, its formal name and acronym, and a short editorial description. Click through to the agency page for the full reference entry — founding date, statutory basis, jurisdiction, parent ministry, headquarters, official channels, and a structured account of role, history, and notable operations footnoted to primary sources.
Coverage spans foreign-intelligence services (the CIA, SIS, DGSE, BND, GRU, SVR, MSS, RAW, and so on), domestic-security services (MI5, FBI, BfV, ASIO, DGSI), and signals-intelligence agencies (NSA, GCHQ, CSE, ASD, GCSB, FAPSI's successors). Entries marked in progress are stubs awaiting full reference treatment; they are kept on the index so the navigation between related services is preserved while the detailed text is written.
If you know the country but not the acronym, start at the Countries index. If you are looking for an operation, scandal, or theme that crosses agencies, see the Dossiers. The methodology page documents how operations are categorised as confirmed, alleged, or disputed.
